Privacy Notice for California Residents
Last updated: May 1, 2023
This Privacy Notice for California Residents (“Notice”) supplements the information in the Privacy Policy posted on our websites and mobile applications and applies solely to visitors, users, and others who reside in the State of California.
This Notice explains our collection, processing, and disclosure of “personal information” relating to California consumers. Specifically, this Notice applies to our processing activity when we are acting as a “business” under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA”)—meaning that we control the purposes and means of processing your personal information. Any terms defined in the CCPA have the same meaning when used in this notice.
Please read this Notice carefully before disclosing your information to us or interacting with our business so you understand our practices regarding your information.
Information We Collect and Disclose
As defined by the CCPA, “personal information” includes any information that identifies, relates to, describes, references, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.
Personal information does not include information that is:
- Lawfully made available from government records;
- We have a reasonable basis to believe is lawfully made available to the general public by the consumer or from widely distributed media, or by the consumer;
- Made available by a person to whom the consumer has disclosed the information if the consumer has not restricted the information to a specific audience;
- Lawfully obtained, truthful information that is a matter of public concern;
- Deidentified or aggregate consumer information; or
Information excluded from the CCPA’s scope, including personal information covered by certain sector-specific privacy laws such as the Fair Credit Reporting Act.
How We Collect Personal Information
We collect the categories of personal information described in this Notice from the following sources:
- Directly from consumers. We collect information directly from you when you choose to provide it to us by filling out forms on our websites or mobile applications, engaging in transactions with us, signing up to receive promotional or information communications from us, using our services, communicating with us about our services, or otherwise directly providing the information to us. For example, in order to purchase products or services, it is necessary for you to disclose personal data, including your name, address, email address, phone number, credit card details and other personally identifying information. If you complete any sort of credit application with a third-party to finance a purchase of Reborn products and services, we may see that information as well.
- Directly and indirectly from activity on our websites and mobile applications. We collect certain identifiers (such as IP addresses) and internet and similar network activity (such as website usage data) from you indirectly using cookie, pixels, and passive tracking technologies, as described in our Privacy Policy.
- From third-parties that interact with us in connection with the services we perform. For example, if you visit Reborn by “clicking through” from a site operated by one of our business partners, and you have registered with that partner, then personal data about you that you have provided to that partner may be shared with us, such as contact information and demographic information. As another example, if you access third party services, such as social media services, through our website or before coming to our website, we may collect information such as your username and other information made available to us through those services, including information about your interactions with our social media pages. We will work with our existing partners and potential future partners to improve and personalize your use of our websites and mobile applications in accordance with the practices outlined in this Privacy Policy.
In the past 12 months, Reborn has collected the following categories of personal information from consumers and disclosed such information to the following categories of third parties for the business purposes described below:
Categories of PI Collected | Examples | Categories of Third Parties to Whom Disclosed |
Identifiers | A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address. | · IT and cloud/hosting service providers, such as our email providers, business application providers, managed services providers and IT consultants
· Online analytics and marketing/advertising service providers · Offline marketing/direct mailing service providers · Professional advisors (accountants, lawyers, and auditors) · Parent company and affiliated entities · Network of dealers we use throughout the U.S. to sell our products and services |
Personal information types listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) | A name, address, telephone number, electronic signature, employment information.
Some personal information included in this category may overlap with other categories. |
· IT and cloud/hosting service providers, such as our email providers, business application providers, managed services providers and IT consultants
· Online analytics and marketing/advertising service providers · Offline marketing/direct mailing service providers · Professional advisors (accountants, lawyers, and auditors) · Parent company and affiliated entities · Network of dealers we use throughout the U.S. to sell our products and services |
Commercial information | Records of services purchased, obtained, or considered. | · IT and cloud/hosting service providers, such as our email providers, business application providers, hosting providers, managed services providers, and IT consultants
· Marketing/advertising service providers · Financial institutions and payment processors · Professional advisors (accountants, lawyers, and auditors) · Parent company and affiliated entities · Network of dealers we use throughout the U.S. to sell our products and services |
Internet or other similar network activity | Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement. | · IT and cloud/hosting service providers
· Online analytics and marketing/advertising service providers · Parent company and affiliated entities |
Sensory data | Audio recordings, voicemail, or similar information. | · IT and cloud/hosting service providers, such as our email providers, business application providers, hosting providers, and telephone communication providers
· Software service providers we use for representative training and support |
Please note that we may also use, disclose, or transfer your information in connection with the sale, merger, dissolution, restructuring, divestiture, or acquisition of our company or its assets. We may also disclose your personal information in response to a court order, subpoena, search warrant, law, or regulation.
Sensitive Personal Information
Reborn does not collect “sensitive personal information” (as defined by the CCPA) for the purposes of inferring characteristics about California consumers. Accordingly, Reborn treats any such information as “personal information” consistent with applicable provisions of the CCPA.
Purposes for Collection and Use of Personal Information
We use or disclose the personal information we collect for one or more of the following business purposes (as well as any other purposes set forth in our Privacy Policy):
- To provide you with information on Reborn products or services that you request from us.
- To provide you with email alerts, event registrations and other notices concerning our products or services, or events or news, that may be of interest to you.
- To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collections.
- To improve our websites and mobile applications and present their contents to you.
- Preventing and detecting fraud, financial crime, hacking activities, security breaches , and as necessary or appropriate to protect the rights, property or safety of us, our customers, affiliates, or others.
- To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
- As described to you when collecting your personal information.
- To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred.
We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.
Sale or Sharing of Personal Information
In the past 12 months, Reborn has “sold” (as that term is defined in the CCPA) Identifiers and Commercial Information to those dealers that we partner with to offer our signature cabinet products and services throughout the United States. Reborn sold such personal information for the purposes of advertising, and selling, its products and services to consumers. Reborn does not have actual knowledge of any sales of personal information regarding minors under 16 years of age.
In the past 12 months, Reborn has “shared” (as that term is defined in the CCPA) personal information with: (i) marketing/advertising services companies, (ii) Reborn’s parent company and affiliated entities, and (iii) online analytics providers, the following categories of personal information for the purposes of cross-context behavioral advertising:
- Identifiers: A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address.
- Commercial information: Records of services purchased, obtained, or considered.
- Internet or other similar network activity: Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.
Reborn shared such personal information with marketing/advertising services companies and online analytics providers for the purposes of allowing such third parties to engage in targeted advertising, including on Reborn’s behalf. Reborn also shared such personal information with its parent company and affiliated entities so that they may advertise to you products and services they offer that may be of interest to you.
Reborn does not have actual knowledge of any sharing of personal information regarding minors under 16 years of age.
Applicable Retention Periods
For each category of personal information identified above, Reborn will only retain such information only for as long as necessary to fulfill your requests or the purposes for which it was obtained, as set forth in this Notice. The criteria used to determine our retention periods include (i) for as long as we have an ongoing relationship with you, (ii) as required by a legal obligation to which we are subject, and (iii) as necessary to resolve any disputes or enforce our legal agreements with you.
Your Rights and Choices under CCPA
The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.
- Right to Understand and Receive Your Specific Information
You have the right to request that we disclose certain information to you about our collection and use of your personal information. Once we receive and confirm your verifiable consumer request, we will disclose to you:
- The categories of personal information we collected about you.
- The categories of sources for the personal information we collected about you.
- Our business or commercial purpose for collecting or selling that personal information.
- The categories of third parties with whom we disclose that personal information.
- The specific pieces of personal information we collected about you (also called a data portability request).
- If we shared or disclosed your personal information for a business purpose, the categories of personal information received by each category of third party.
- Right to Request Deletion
You have the right to request that we delete personal information we collected from you, subject to any exceptions or limitations under the CCPA.
- Right to Correct Inaccurate Information
If we maintain inaccurate personal information about you, you have the right to request that we correct that inaccurate personal information, taking into account the nature of the personal information and the purposes of the processing of the personal information.
- Right to Opt-Out
Consumers in California have the right to opt-out of (1) the sharing of their personal information for the purposes of cross-context behavioral advertising (as defined in the CCPA), or (2) the sale of personal information. Consumers do have the right to opt-out of the sharing of their personal information. Information regarding how to opt-out is provided below.
Exercising Your Rights to Access/Know, Delete, and Correct Inaccurate Information
To exercise your rights described above, please submit a verifiable consumer request (which we explain below) to us by either:
- Calling us at 866-395-4515
- Completing the online Personal Information Request Form
If you are an agent submitting a request on behalf of a consumer, we may request that you submit a signed permission from the consumer authorizing you to make the request. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request. As indicated above, please be aware that the CCPA provides certain limitations and exceptions to the foregoing rights, which may result in us denying or limiting our response to your request.
Response Timing and Format
We endeavor to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For example, we will not provide social security numbers, driver’s license numbers or government issued identification numbers, financial account numbers, passwords or security questions and answers, or any specific pieces of information if the disclosure presents the possibility of unauthorized access that could result in identity theft or fraud or unreasonable risk to data or systems and network security.
For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.
Exercising Your Right to Opt-Out of Sharing
To exercise your right to opt-out of the sharing of your personal information, you—or someone authorized to act on your behalf—must submit a request to us by:
- Calling us at 866-395-4515
- Completing the online Personal Information Request Form
The CCPA requires us to comply with a consumer request to opt-out of sharing as soon as feasibly possible, but no later than fifteen (15) business days from the date the request is received. No verification is required; however, we may deny a request to opt-out of sharing if we have a good-faith, reasonable, and documented belief that the request is fraudulent. In the event we deny a request for this reason, we will inform the consumer that we are not complying with the request and provide an explanation of why we believe the request is fraudulent.
Requests may be made using an authorized agent, if the consumer provides the agent with written permission signed by the consumer to act on the consumer’s behalf. We may deny a request if the applicable agent does not submit proof that it has been authorized by the consumer to act on the consumer’s behalf.
Once a consumer makes an opt-out request, we will honor such request for at least twelve (12) months before asking the consumer to reauthorize personal information sharing.
Additionally, if a consumer initiates a transaction or attempts to use a product or service that requires the sharing of the consumer’s personal information, we may inform the consumer that the transaction, product or service requires the sharing of the consumer’s personal information and provide the consumer instructions on how to opt-in to sharing.
Non-Discrimination
We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:
- Deny you goods or services.
- Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
- Provide you a different level or quality of goods or services.
- Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
Data Sharing or Direct Marketing Purposes
California Civil Code § 1798.83 (California’s Shine the Light Act) further permits California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. If you are a California resident, you may ask us to refrain from sharing your personal information with certain of our affiliates and other third parties for their marketing purposes. Please tell us your preference by contacting us at the contact information below.
Changes to Our Privacy Notice
We know that our business will continue to evolve, and, as such, from time to time this Notice may be reviewed and revised. Reborn reserves the right to change this Notice by posting the changes on its website. You can determine when this Notice was last updated by reviewing the Last Updated legend stated at the top of this Notice and any revisions will take effect upon posting. We will notify our members of material changes to this Notice by either sending a notice to the email address you provided to us or by placing a notice on our website. We encourage you to check this Notice from time to time to review the most current version.
Contact Information
If you have any questions or comments about this Notice, the ways in which we collect and use your personal information, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact us at:
Reborn Cabinets
Attn: Privacy Officer
5515 E. La Palma Ave.
Anaheim, CA 92807
1-844-950-1223
Email: privacy@reborncabinets.com
If you contact us by phone, the conversations may be recorded. You will be notified of these recordings at the beginning of the call. We use these recordings to improve the quality or compliance of our customer service, to verify the accuracy of the information you provide, to ensure prevention of fraud and to train our teams. We keep these recordings for as long as necessary, and then erase them. Your personal data collected during a call is processed in accordance with the provisions of this Privacy Policy.